Uploaded image for project: 'Cloud Enablement'
  1. Cloud Enablement
  2. CLOUD-2738

[JDG] data validation flaw found in the way gnupg processes file names during decryption and signature validation CVE fix (CVE-2018-12020)

    Details

    • Type: Bug
    • Status: Closed (View Workflow)
    • Priority: Major
    • Resolution: Done
    • Affects Version/s: JDG71 1.3.0.GA, JDG72 1.0.0.GA
    • Fix Version/s: None
    • Component/s: JDG7
    • Labels:
      None
    • Security Sensitive Issue:
      This issue is security relevant

      Description

      The JDG 7.1 and JDG 7.2 images needs a re-spin, to use the new base image with the fix for CVE-2018-12020 (https://access.redhat.com/security/cve/cve-2018-12020).

        Gliffy Diagrams

          Attachments

            Activity

              People

              • Assignee:
                osnipso Osni Oliveira
                Reporter:
                osnipso Osni Oliveira
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: